Skip to Main Content
Steer your organisation safely through 2021 and navigate to cyber safety with IT Governance. Find out how

Cyber Essentials Plus - Get A Lot of Help

Cyber Essentials Certification and Precheck


Cyber Essentials Toolkit


 

Cyber Essentials Onsite Consultancy – 1 day


Cyber Essentials Plus Certification


Price: £3,050.00
ex. VAT
Cyber Essentials Plus - Get A Lot of Help
SKU: G4502
Format: Certification (Online purchases only)

This service will help you achieve IASME-licensed Cyber Essentials Plus certification with a lot of help from us. It is conducted online and includes:

  • A £300 charge for IASME Cyber Essentials certification, our Get A Lot of Help Service and a Cyber Essentials Plus audit;
  • IASME certifications for Cyber Essentials and Cyber Essentials Plus, upon successful completion of all elements;
  • One full day of consultancy support, which can be conducted on-site or remotely;
  • The Cyber Essentials toolkit, providing you with all the policies and procedures you need to implement the controls;
  • A precheck of your responses to the SAQ (self-assessment questionnaire) by one of our security experts before submission to determine whether you are likely to pass on that basis;
  • An on-site assessment, internal vulnerability scans and external vulnerability scans (can be conducted remotely in some cases)
  • Free cyber insurance and support; and
  • A certification guarantee*.

This package auto-renews in line with our terms and conditions.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our service centre team on +44 (0)333 800 7000.

Save £300 when you buy the Cyber Essentials Plus - Get a Lot of Help package online. (RRP. £3,395.)

Description

The Get A Lot Of Help package

The Get A Lot Of Help package will give you a better chance of achieving IASME-licensed Cyber Essentials Plus certification at the first attempt. It is designed for organisations with little or no knowledge of the five controls and testing conditions, as well as those that do not know their scope or the IP range that should be tested.

We also recommend this solution for large organisations with complex organisational structures.


What’s included in Cyber Essentials Plus Get A Lot Of Help?

Cyber Essentials certification, Cyber Essentials Plus certification and precheck

  • A precheck of your responses to the SAQ by one of our security experts before submission to determine whether you are likely to pass on that basis;
  • Access to the IASME portal, where you will submit your self-assessment;
  • A certification guarantee*;
  • Free cyber insurance available to UK companies with a turnover of less than £20 million;
  • An on-site assessment, internal vulnerability scans and external vulnerability scans (can be conducted remotely in some cases); and
  • Your Cyber Essentials and Cyber Essentials Plus certificates.

Cyber Essentials Toolkit

The most important aspect of your CES documentation is that it must be your own work and in your own words. You will need to complete the documents in the toolkit to reflect your organisational culture, your processes and your technologies.

  • Designed to reflect the requirements of the Cyber Essentials Scheme.
  • Built on expert knowledge from numerous cyber security implementation projects.
  • Ensure that the controls you are implementing are aligned to the requirements of the Cyber Essentials Scheme.

Cyber Essentials Onsite Consultancy – 1 day

This full day of consultancy support is designed to help you achieve certification, and can be conducted on-site or remotely.

It will review your security posture in advance, helping you with various aspects of certification-readiness, including defining the scope of the certification, reviewing and setting the IP testing range, and supporting efforts to implement the five controls.

This service is ideal for organisations with more complex infrastructures, as well as those with little knowledge of information security and the five controls. It is also suitable for large organisations with complex structures, although we suggest they start with a Cyber Essentials Plus Health Check


*Certification guarantee

Please note: Our certification guarantee is based on your organisation implementing all the required controls and providing us with your application to check before your first submission. Full details can be found in our FAQs


How the application process works:

  • We send you access details for the IASME Cyber Essentials portal via email.
  • We contact you to book your consultancy support.
  • You log on to the IASME portal, where you will define your scope for testing and complete the IASME SAQ.
  • We review your assessment before your first submission and inform you whether you are likely to meet the criteria needed to achieve certification.
  • You update the SAQ based on our feedback, confirm, and submit your application on the IASME portal.
  • Subject to a positive outcome, we issue your Cyber Essentials certificate.
  • Once you are Cyber Essentials certified, you schedule your on-site assessment, which will include the internal vulnerability scan.
  • We conduct the on-site assessment and perform the necessary internal scan on a sample of your Internet-facing devices.
  • We provide you with the results of the internal scan and on-site assessment.
  • If there are nonconformities, we provide feedback to help you understand how to close these gaps and achieve certification.
  • We schedule your external vulnerability scan.
  • Subject to a positive outcome, you receive your Cyber Essentials Plus certificate.
Benefits

Benefits of Cyber Essentials Plus certification

Secure the supply chain

The ICO (Information Commissioner’s Office), whose job it is to uphold the EU GDPR in the UK, recommends Cyber Essentials as “A good starting point” for the cyber security of the IT you rely on to hold and process personal data.

Secure more business

If you would like to bid for central government contracts that involve handling sensitive and personal information or the provision of certain technical products and services, you will require Cyber Essentials certification.

Work with the UK government & MoD

Cyber Essentials Plus will give you the opportunity to work with the UK government and MoD.

Reduce cyber insurance premiums

Cyber insurance agencies look more favourably on organisations that have achieved Cyber Essentials certification.

Conditions

Conditions

Cyber Essentials Plus involves a technical audit of the systems that are in scope for Cyber Essentials. This includes a representative set of workstations, mobile devices and build types in use by the organisation end users to complete their day-to-day duties. The number of builds is defined by the number of configurations of operating system and software suites installed. If more than one browser or Office suite is used, each variant will need to be tested. If they are installed on the same build, this is acceptable.

  • Your consultancy support day can be delivered either on-site or remotely. Any unused time will not be credited back.
  • This package includes on-site testing at one location, of one type of user account, on up to ten sample devices. Additional workstations, mobile devices and build types may need to be tested to meet the sampling requirements of the scheme. If you require more than ten end-user workstations to be tested, you will need to purchase Cyber Essentials Plus Additional Device Testing. This testing can be conducted remotely in some instances.
  • The package includes a free vulnerability scan for up to 16 IP addresses. If you have more than 16 IP addresses, you will need to purchase additional IP packages in packs of 16. If you fail your external scan, a rescan will need to be purchased, plus any additional IP packages that you need to cover only the failing IP addresses if completed with 14 days of the first passing element.
  • If your business is located outside mainland UK, additional expenses will be charged to accommodate our consultant’s travel time and costs for the on-site consultancy day and on-site assessment. These will be billed separately.
  • If you are not successful on your first submission for Cyber Essentials, you have two working days to submit a further attempt for certification. If you are not successful on your second submission, you will be required to wait one month before reattempting at the cost of a new application.
  • If your Cyber Essentials Plus application is unsuccessful, your Cyber Essentials certification may be revoked.
  • Free cyber insurance is available to UK organisations with a turnover of less than £20 million. Includes 24 hour helpline to report a cyber incident. Total liability limit of £25,000. Terms and conditions apply.

Test requirements

  • All user devices are subject to testing and will be agreed upon before the testing date, including mobile and BYOD (bring your own device), and must be available for testing.
  • All devices within the scope of testing must be user devices and cannot be built specifically for testing.
  • A local user account with username and password must be available for each user group in scope.
  • Devices must have Internet access, allow emails from our test domain and be accessible by our test web server (https://ces.itgovernance.co.uk).
  • You must provide details of a user email account per user group being assessed.
  • Workstation builds must be configured to allow an authenticated vulnerability scan that will determine patch and version numbers of installed software, and you must provide details of the user account to be used.
  • Remote registry must be enabled on the workstation builds, and no global policies that block the authenticated vulnerability scan are permitted.

Customer Reviews

(5.00)stars out of 5
# of Ratings: 4
1. on 22/03/2021, said:
5 stars out of 5
I found our CE+ experience to be quite easy, but this is down to the help and guidance we had from our Assessor. We always felt connected and able to reach out if we needed help. I would definitely use IT Governance for our renewal and of course any other certification path we may decide to go down in the future.
2. on 12/11/2020, said:
5 stars out of 5
Great service and professional help given to help you pass Cyber Essentials Plus.
3. on 27/06/2016, said:
5 stars out of 5
I am a big fan of Cyber Essentials: as a government-backed and industry-supported scheme it allows us to demonstrate to stakeholders that we have essential IT security controls in place. I am proud of the Action for Children IT team for achieving the ‘Plus’ level of certification for two years running. Action for Children have found the certification robust, worthwhile and cost effective. I would encourage all organisations to consider Cyber Essentials, especially those providing services to public sector bodies. Alan Crawford, Chief Information Officer - Action for Children
4. on 27/06/2016, said:
5 stars out of 5
Security is at the heart of everything we do, we take cyber security very seriously – the data centre is our business and security is part of that foundation. Achieving Cyber Essentials Plus will add great value: sharing the knowledge is one of our core values and our security accreditations allow us to live this value safely and effectively whilst enabling our customers to do the same. This fits well with our other certificates like ISO/IEC 27001:2013 and ISO/IEC 22301:2012. This gives our customers absolute piece of mind that their data is in the safest hands and ensures that our team are kept upskilled and informed. A. Rahim Khan, Information Security Officer - brightsolid Online Technology Ltd
Showing comments 1-4 of 4
This website uses cookies. View our cookie policy
WIN £100
Loading...